-
Bug
-
Resolution: Unresolved
-
Minor
-
rhel-10.1, rhel-9.7
-
fapolicyd-1.4.3-1.el10
-
No
-
Low
-
1
-
rhel-security-selinux
-
22
-
1
-
QE ack
-
False
-
False
-
-
No
-
SELINUX 260128: 17
-
-
Pass
-
Automated
-
Release Note Not Required
-
Unspecified
-
Unspecified
-
Unspecified
-
None
https://fedoraproject.org/wiki/SELinux/IndependentPolicy#Using_custom_interfaces
If an SELinux module provides interface file, -selinux sub-packages should ship it and own it as %{_datadir}/selinux/devel/include/distributed/%
{modulename}.if
But there's no package which owns %{_datadir}/selinux/devel/include/distributed/ - https://docs.fedoraproject.org/en-US/packaging-guidelines/UnownedDirectories/
[root@vm-10-0-187-153 ~]# rpm -qf /usr/share/selinux/devel/include/distributed/ file /usr/share/selinux/devel/include/distributed is not owned by any package [root@vm-10-0-187-153 ~]# rpm -qf /usr/share/selinux/devel/include/distributed/* fapolicyd-selinux-1.4.2-1.el10.noarch insights-core-selinux-3.6.11.1-1.el10.noarch passt-selinux-0^20251210.gd04c480-2.el10.noarch
Either selinux-policy needs to own the whole tree after /usr/share/selinux/devel ; or guidelines and -selinux packages need to be fixed to own /usr/share/selinux/devel with all subdirs in the interface path
- clones
-
-
- Release Pending
-
- links to
-
RHBA-2025:155643
fapolicyd update